Which of the following actions should a risk practitioner do NEXT when an increased industry trend of external cyber attacks is identified? A. Update the key risk indicator (KRI) in the risk register. B. Update the risk impact rating in the risk register. C. Notify senior management of the new risk scenario. D. Conduct a threat and vulnerability analysis. Â Suggested Answer: D This question is in CRISC exam For getting Risk and Information Systems Control Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by ISACA. The website does not contain actual questions and answers from ISACA's Certification Exams. Trademarks, certification & product names are used for reference only and belong to ISACA.
Please login or Register to submit your answer